Impact: Execution of arbitrary code via network, User access via network
Version(s): 6.0 and prior versions
Description: White-Knight of the Alpha Hackers Digital Security Team reported a vulnerability in Adobe Acrobat Reader. A remote user may be able to cause arbitrary code to be executed.
A remote user can create a specially crafted PDF file that, when loaded by Acrobat Reader, will trigger an Invalid-ID-Handle-Error in 'AcroRd32.exe'. User supplied values may be written to certain memory locations and potentially executed.
Impact: A remote user may be able to create a PDF file that, when loaded by the target user, will execute arbitrary code on the target user's system.
Solution: No solution was available at the time of this entry.
Read More.... ->
http://www.securitytracker.com/alerts/2005/Apr/1013774.html